Senior Infrastructure Security Engineer at zocks

Company Overview: We're Zocks, a venture capital-backed AI startup changing the world of financial services, and other industries that value security and privacy. Our founding team built their careers working on real-time communication products, building enterprise platforms, and crafting tools for some of the most security-conscious industries. With experience gained from industry leaders like Twilio, IBM, Microsoft, and Hearsay Systems, we're using AI to bridge human conversations with enterprise systems, starting with financial services.  Our focus, although simple, is powerful: reinventing business operations and transforming the areas that often get bogged down by slow, inefficient processes. Our innovative platform allows people to communicate naturally, while we capture the information they need, so they can avoid data entry, streamline their operations, and spend more time on what matters most: their clients. Location: Budapest, XI. (On-site Monday to Thursday, Remote on Fridays) Why we're hiring for this role: We're rapidly expanding, and with that comes an increasing urgency to mature our security posture. Compliance readiness, and proactive risk management are becoming equally critical — this role will be a key driver of those efforts alongside infrastructure ownership. This could be a unique opportunity to have a big impact in owning security initiatives and establishing a strong security baseline at Zocks. Key challenges you will work on every day: • Owning the full cloud infrastructure lifecycle across multi-region environments • Owning and hardening the security perimeter across cloud and network boundaries • Triaging and remediating findings from penetration tests and vulnerability scans in collaboration with external security partners • Creating and maintaining our delivery pipeline from developer machines to production, including automated security checkpoints, secrets scanning, and dependency auditing. • Supporting compliance initiatives (e.g. SOC 2, ISO 27001, NIST) through infrastructure controls, audit logging, and evidence collection • Optimizing network topology for the best possible connectivity, latency and throughput for end users Most of this applies to you: • Deep understanding of AWS (EC2, Networking, RDS), ideally also some familiarity with Azure and GCP • Expert understanding of Linux • Solid scripting skills in one or more of the following languages: Python, Go, Java, Rust, C • Solid knowledge of private and public networking including VPN, firewalls, zero-trust network architecture, and securing ingress/egress traffic • Proficiency in managing multi cluster container environments, preferably with Kubernetes • Preference for a solid understanding of immutable infrastructures and IaC tooling (Terraform) • Experience with cloud security tooling (AWS Security Hub, GuardDuty, IAM policy hardening, network ACLs, SCPs) • Familiarity with penetration testing methodologies — able to understand findings, prioritize remediation, and coordinate fixes across teams • Knowledge of secrets management (Vault, AWS Secrets Manager) and PKI/certificate lifecycle management • Understanding of security frameworks and compliance requirements (SOC 2, ISO 27001, CIS Benchmarks) — audit preparation experience is a plus • Experience with runtime security and threat detection tools (Falco, Wiz, Crowdstrike, or similar) is an advantage Requirements: • 5+ years relevant experience (DevOps/Infrastructure) • Strong English and Hungarian communication skills • Experience working in complex technical organization across global offices/locations in an Agile environment • Experience working with startups and AI technologies is an advantage • Fluent English and Hungarian language knowledge What we offer on top of our competitive base salary: -Premium Health Insurance -SZÉP-card -L&D contribution -AYCM package -Employee equity program -Extra PTO -Home office support -Your lunch is on us when you are in the office -Fully stacked office snacks Location: Budapest, XI. (On-site Monday to Thursday, Remote on Fridays) We are an equal opportunity employer and never discriminate based on race, religion, national origin, gender identity or expression, sexual orientation, age, or marital, veteran, or disability status. At Zocks, we value diversity and believe that it enhances our creativity, innovation, and overall success. We encourage all qualified individuals to apply.